PHP SQL LIKE operator wildcard cause SQL injection

PHP SQL LIKE operator with percent sign wildcard cause SQL injection vulnerability. One of my team member build a backend system and discovery the backend system can explore all the data by wildcard. So let analysis and investigate why change UserID to percent sign can cause SQL injection and explore…